accept io.js default ciphers (updated and secure)

This commit is contained in:
AJ ONeal 2015-06-30 02:57:29 +00:00
parent e1e4d86941
commit 945ec23965
1 changed files with 4 additions and 2 deletions

View File

@ -447,8 +447,10 @@ module.exports.create = function (securePort, certsPath, vhostsdir) {
key: localDummyCerts.key
, cert: localDummyCerts.cert
, ca: localDummyCerts.ca
// changes from default: disallow RC4
, ciphers: "ECDHE-RSA-AES128-SHA256:DHE-RSA-AES128-SHA256:AES128-GCM-SHA256:!RC4:HIGH:!MD5:!aNULL"
// io.js defaults have disallowed insecure algorithms as of 2015-06-29
// https://iojs.org/api/tls.html
// previous version could use something like this
//, ciphers: "ECDHE-RSA-AES128-SHA256:DHE-RSA-AES128-SHA256:AES128-GCM-SHA256:!RC4:HIGH:!MD5:!aNULL"
};
function addSniWorkaroundCallback() {